What I use.
The hardware, software, and security tooling I actually run. Nothing here is sponsored. If a tool isn't listed, I don't touch it daily.
Editor & terminal
Where the keystrokes happen.
- VS Code
Daily driver. Theme: One Dark Pro. Mono: Geist Mono.
· Agentic coding sidekick in the terminal.
- iTerm2 + zsh
Plus starship prompt and a few aliases I refuse to give up.
· - tmux
For long-running sessions and split panes during pentests.
·
Build stack
What ships.
- TypeScript
Strict mode, always.
· Default for new web work. RSC where it earns its keep.
CSS-first config. Tokens in @theme, no JSON config.
- Framer Motion
Reveals, scroll-driven, layout — all of it.
· Postgres + auth + storage when I don't want to host a backend.
Streaming + tool use + provider-agnostic LLM glue.
Security toolkit
For looking under the hood.
Proxy + intruder + active scan. Daily.
Open-source fallback when Burp isn't around.
- nmap
Quick recon, service version detection.
· - Wireshark
When something on the wire makes no sense.
· - Docker
Reproducible lab environments — vulnerable app + fix side-by-side.
· - Kali Linux
Lab VM with everything pre-loaded.
·
Cloud & deploy
Production lives here.
Deploys, previews, edge functions, OG generation, analytics.
DNS, WAF, turnstile, R2 when I need cheap object storage.
- GitHub Actions
CI for tests, audits, scheduled jobs.
· Transactional email — like the one this site sends on contact.
Workflow & writing
How the work gets organised.
For project tracking when collaborating.
- Notion
Long-form notes, research, draft posts.
· - Raycast
Launcher, clipboard history, snippets. Replaced Spotlight years ago.
· - 1Password
Vault for secrets — never plaintext in repos.
·
Hardware
Physical setup.
- MacBook Pro
Apple Silicon. Primary machine.
· - External monitor
4K, for diff-checking and side-by-side workflow.
· - Mechanical keyboard
Tactile switches. Quieter than blues, louder than browns.
· - AirPods Pro
Focus mode + noise cancellation when shipping.
·